8869b5841daf816cc59585977254525eb54b2631c37538257efb479675e1007e

Analysis

max time kernel
7s
max time network
136s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
05/10/2024, 09:10

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

1710db200325428d9fbffd1fd769a7e1_JaffaCakes118.apk
Size

16.1MB
MD5

1710db200325428d9fbffd1fd769a7e1
SHA1

504763e7164d4acfe107fc72ac0d246ec59ffef6
SHA256

8869b5841daf816cc59585977254525eb54b2631c37538257efb479675e1007e
SHA512

ce9be00a6e51b29cd38213f5425cd3a22efff362fc229b0c976a0d8673ec2d1a23c20597fb1cda0fabecd1fad7acab93cc8fef8a6af89b3f2e605efda903f9b5
SSDEEP

393216:YyHSU63fhGeLO5I240k97n7cAlMta8NzHCw58NDSBjA:ryUkZGF5b4j7n/cCwK0BjA

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 2 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/cmcc.cj_sun_vote_cc/files/data.jar	4282	/system/bin/dex2oat --debuggable --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --debuggable --generate-mini-debug-info --dex-file=/data/user/0/cmcc.cj_sun_vote_cc/files/data.jar --output-vdex-fd=45 --oat-fd=46 --oat-location=/data/user/0/cmcc.cj_sun_vote_cc/files/oat/x86/data.odex --compiler-filter=quicken --class-loader-context=&
/data/user/0/cmcc.cj_sun_vote_cc/files/data.jar	4250	cmcc.cj_sun_vote_cc

cmcc.cj_sun_vote_cc
1⤵
- Loads dropped Dex/Jar
PID:4250
- /system/bin/dex2oat --debuggable --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --debuggable --generate-mini-debug-info --dex-file=/data/user/0/cmcc.cj_sun_vote_cc/files/data.jar --output-vdex-fd=45 --oat-fd=46 --oat-location=/data/user/0/cmcc.cj_sun_vote_cc/files/oat/x86/data.odex --compiler-filter=quicken --class-loader-context=&
  2⤵
  - Loads dropped Dex/Jar
  PID:4282

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/cmcc.cj_sun_vote_cc/databases/license_data.db

Filesize
32KB

MD5
ca2bcc7a502ebe854deae37d6952b481

SHA1
29d9cacf79b5eaea6db50402bdb19fd17454ad1f

SHA256
b8c2639c6e290d8880b1ecc74cd61838439860efa104c9d68c578d8fa3da85d2

SHA512
0a6b1cb290da5bfc7641cf4df4df4a6b332f0cfc9db45a8bfe36379c8dbfb06ed6267792ef397be193d601e472b8607f441035e9a05b85546b626b90346443f5

Download Submit
/data/data/cmcc.cj_sun_vote_cc/databases/license_data.db-journal

Filesize
512B

MD5
526cc9f47c4631731a2d443923cef868

SHA1
107c948e49934eeb0317841a478998d1ef9b473c

SHA256
07ce71d1a8ee7b332f0d61ef56bd2243d53c29044b6708114b6cd80c02918a71

SHA512
b12fbbc01385999aae0933d6ebceb4c85054b1162e8b96a6464a215fe3c2ebf32eac0d059bbf7563865acf824ff15af162e2e72e3cde09020fdacdc57725f2b0

Download Submit
/data/data/cmcc.cj_sun_vote_cc/databases/license_data.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/cmcc.cj_sun_vote_cc/databases/license_data.db-wal

Filesize
44KB

MD5
24ba632bd72440314e1d6bf60c41af45

SHA1
80d4a14603efaec319ba2a7f7ee76e4f41ee570c

SHA256
a5eb732aec067b5b906c4a6e78657d270a6f052511d3b677ff2b95d19b639aa4

SHA512
c977f2a9b157ce767afbb4ff765faf185fab68b280edf91b9b417c95fb6001db099f8016d77ffdf51f9d827632ab8ed91fbe2bd6164c4c0f3267a557a2ce8e1e

Download Submit
/data/data/cmcc.cj_sun_vote_cc/files/data.jar

Filesize
79KB

MD5
8b692d72b8c9aae037c8748a26fa6d1c

SHA1
196d83baba3f99e3c6c67d5d81af46f5f3f5fab2

SHA256
d031847b29566324ed41e7b3e1f52862e68e33512f1c8c80036a960c2c7e4d69

SHA512
0b931108e93bea6b3604e5bc7a6c54defdcbc274531a5e47eb280cb2301335e9ba290ee0986d6447f4a2a8d44a1e55c78048ad27be4ea6147c70d7e0b833d3eb

Download Submit
/data/data/cmcc.cj_sun_vote_cc/files/iapSplash.dat

Filesize
3B

MD5
c6f057b86584942e415435ffb1fa93d4

SHA1
8aefb06c426e07a0a671a1e2488b4858d694a730

SHA256
2ac9a6746aca543af8dff39894cfe8173afba21eb01c6fae33d52947222855ef

SHA512
bdc247a1a0e28a586ed40744d281993d519abe981aaef33277d4877d167e1150816e9723d068a59509991ed0cdd8c5cea0f9ecd0ef23664db7cb85db5a0dbe12

Download Submit
/data/data/cmcc.cj_sun_vote_cc/files/pay.data

Filesize
79KB

MD5
efa2eda6c5bb780c5f51fef933c141fe

SHA1
6b161226792d358607ee905c2707fb0a12800492

SHA256
e3954c188b6e0591fa86481f88ba1b228b04e831964fec1dbcac40dd63d81ae8

SHA512
c0d141fa8a2aa34685b875ec9001d957b232175864dcb22387d86490da52eddcaab78985d9f81b440c912b8b5621da639cae361207aaebc7fac4b0d5be6d8428

Download Submit
/data/user/0/cmcc.cj_sun_vote_cc/files/data.jar

Filesize
193KB

MD5
1b615ab649ffea66a6d96023bfb778a4

SHA1
271e2f1529f70ab7d1c2a4ba932bcde8865d32eb

SHA256
394d10b8484107780f2bbb2921e1ed05f9876d982dc52e82d8dc9dfb6648a72c

SHA512
3d08038f93f9dd50f27281eda969c6b643f47e96328359ac6377e7ca50cd4caceb484712b145468224f5c2a315928e68d67ff68ef906cb8f19fe720d350a6cb9

Download Submit
/storage/emulated/0/InAppBillingLibrary/log

Filesize
90B

MD5
d0cf55c8ba9bf5eda8e268e215e69a3c

SHA1
2ddf64d57b84caad65c82819a25962472f2b81ea

SHA256
c4cfbc380bb9e468af14a2610290d73be80f2eff15beca95e6e85bdcc0559fa6

SHA512
c41cba42b45dcd1e14270bc935e96ad552f446f0d4c9e142150bca6a88df00d2d46794057a1246ed434291bdda1fa308a8868225cc2212305dbe302fa983c70f

Download Submit
/storage/emulated/0/InAppBillingLibrary/log

Filesize
83B

MD5
9b85644d1230468bdba06730fc047656

SHA1
754f0eb89f651ebb86753a1671379a0b9c96338e

SHA256
ad4b27a7d2390bd1a95be913d18a84eb9bca944eb62893a5f625dd21d20e3b0a

SHA512
e90d5f64923790682ae92416027a4bc213d5615d31bbf25dfdab541fb81c5570d5ae512a3a11f0949e9b3f7b781515d70a58035e27f3e40211d68eabcd26c52f

Download Submit
/storage/emulated/0/InAppBillingLibrary/log

Filesize
80B

MD5
6404c6fd7822146d833147c37771a2f8

SHA1
76ad282406e17d12782c7f482dda08fb12ecc1a1

SHA256
1b6e44791f6ce1b7f28d3c12f32f6f4c47851a55f5e9ac52b18d2f969ef54d29

SHA512
a60bd11007faf12e87fe6a665bec967201bd1e667147b149de30edd4ffb0b147bcfc7dfda4222c422d59631a40fcb28eb207fa7979bbb67a064d8b5f10ca2577

Download Submit